[Engine-devel] Introducing Infinispan cache and some required actions after change
by Michael Kublin
Hi All,
The following commit I2fbebb10c08c87d2c7fd4d7443d3e3b374541ed7 will introduce a in memory cache inside ovirt-engine
The cache which was chosen is infinispan (http://www.jboss.org/infinispan/)
The reasons are following: cache has all required functionality, it is open source project and has built-in integration with
JBOSS, all cache configuration can be accessed or edited via JBOSS admin console.
By introducing this commit the first stage is finished:
1. Cache implementation is added to project
2. Show example how to add and use a cache in ovirt-engine, if it is required
3. Solved bug with possible memory leak in audit log event
The next stages are:
1. Second stage - replace all custom made implementation by standard central cache implementation
2. Third stage - introduce second level cache for work with DB
3. Fourth stage (Future) - make cluster wise cache or make cache as service, if we will have more than one instance of JBOSS
Now, after the applying the following commit I2fbebb10c08c87d2c7fd4d7443d3e3b374541ed7, everyone who works with ovirt-engine
will be required to perform the following operation
1. Run mvn clean install -Pdep,setup in order to replace an old standalone.xml with new version of it
Or
1. Use regular deploy: mvn clean install -Pdep
2. Access to $JBOSS_HOME/bin/standalone.xml and replace or add infinispan subsystem:
<subsystem xmlns="urn:jboss:domain:infinispan:1.1" default-cache-container="ovirt-engine">
<cache-container name="ovirt-engine" default-cache="timeout-base" jndi-name="java:jboss/infinispan/ovirt-engine" start="EAGER">
<local-cache name="timeout-base">
<transaction mode="NONE"/>
<eviction max-entries="10000"/>
<expiration interval="60000"/>
</local-cache>
</cache-container>
</subsystem>
3. Add or check that exists <extension module="org.jboss.as.clustering.infinispan"/> under <extensions> element
Thanks and Regards Michael
11 years, 7 months
Re: [Engine-devel] Question about reports generating when running mvn site
by Yair Zaslavsky
Mike came up with a simpler solution -
mvn findbugs:findbugs - from root pom
Works like a charm.
Many thanks!
----- Original Message -----
> From: "Yair Zaslavsky" <yzaslavs(a)redhat.com>
> To: "Mike Kolesnik" <mkolesni(a)redhat.com>
> Sent: Monday, April 22, 2013 9:35:12 AM
> Subject: Re: [Engine-devel] Question about reports generating when running mvn site
>
> No,
> I will try.
> Thanks.
>
>
> ----- Original Message -----
> > From: "Mike Kolesnik" <mkolesni(a)redhat.com>
> > To: "Yair Zaslavsky" <yzaslavs(a)redhat.com>
> > Sent: Monday, April 22, 2013 9:30:35 AM
> > Subject: Re: [Engine-devel] Question about reports generating when running
> > mvn site
> >
> > have you tried
> >
> > mvn findbugs:findbugs
> >
> > ?
> >
> > Regards,
> > Mike
> >
> > ----- Original Message -----
> > > Hi all,
> > > It seems that generating all the reports when running mvn:site takes
> > > quite
> > > some time.
> > >
> > > Do we really need all these reports?
> > >
> > > Here is a snippet from the execution -
> > >
> > > [INFO] Generating "About" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Project Team" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Dependency Information" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Dependency Management" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Project Plugins" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Continuous Integration" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Issue Tracking" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Source Repository" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Dependency Convergence" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Project License" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Plugin Management" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Distribution Management" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Project Summary" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Mailing Lists" report ---
> > > maven-project-info-reports-plugin:2.6
> > > [INFO] Generating "Dependencies" report ---
> > > maven-project-info-reports-plugin:2.6
> > >
> > >
> > > These reports are being generated when I run mvn site in order to
> > > generate
> > > a
> > > find-bugs report.
> > >
> > >
> > > Many thanks,
> > > Yair
> > > _______________________________________________
> > > Engine-devel mailing list
> > > Engine-devel(a)ovirt.org
> > > http://lists.ovirt.org/mailman/listinfo/engine-devel
> > >
> >
>
11 years, 7 months
[Engine-devel] Question about reports generating when running mvn site
by Yair Zaslavsky
Hi all,
It seems that generating all the reports when running mvn:site takes quite some time.
Do we really need all these reports?
Here is a snippet from the execution -
[INFO] Generating "About" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Project Team" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Dependency Information" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Dependency Management" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Project Plugins" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Continuous Integration" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Issue Tracking" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Source Repository" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Dependency Convergence" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Project License" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Plugin Management" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Distribution Management" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Project Summary" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Mailing Lists" report --- maven-project-info-reports-plugin:2.6
[INFO] Generating "Dependencies" report --- maven-project-info-reports-plugin:2.6
These reports are being generated when I run mvn site in order to generate a find-bugs report.
Many thanks,
Yair
11 years, 7 months
[Engine-devel] Location of findbugs filter.xml file
by Yair Zaslavsky
Hi all,
I sent a patch upstream to add findbugs filter that will filter out bug reports that we decided that are not bugs.
We have a debate on whether to have the findbugs filter definition in the root pom.xml or to put it in the jenkins jobs repo and treat it as an external tool.
I would like to hear opinions about what you think should be the proper location
Thanks,
Yair
11 years, 7 months
[Engine-devel] Changes in DB scripts that need your attension
by Eli Mesika
Hi
As part of solving https://bugzilla.redhat.com/show_bug.cgi?id=947344 I am doing the following changes:
1) Create all *.md5 files in /tmp/db
2) Create db log files by default under /var/log/ovirt-engine/db
3) Do not automatically create a *.schema file that represent the up-to-date schema (after all upgrades took place)
A new utility script exportDbSchema.sh will be available for that (manual only, no auto-generation schema)
In order that DB scripts in development environment will keep working, please do
> sudo mkdir -p /var/log/ovirt-engine/db
> sudo chmod 777 /var/log/ovirt-engine/db
If you are getting "Permission Denied" errors while running the scripts it means that you didn't run the 2 commands above.
If you have any comments/suggestions to this solution, please respond before this patch is merged, I will wait with this change to next SUN , APR 21 2013
Best Regards
Eli
11 years, 7 months
Re: [Engine-devel] Fwd: about ca-file
by Michael Pasternak
Hi,
Please make sure [1] is exist on the file system and has right permissions,
btw till you resolve this, you can connect to your site in insecure mode:
1. without host being validated raising --dont-validate-cert-chain flag
2. without no-certificate error being thrown raising --insecure flag (host
will be validated once [1] is available/accessible by the shell)
[1] /home/leaboy/ovirt_ca/ca_cear.pem
On 04/20/2013 11:37 PM, Itamar Heim wrote:
>
> [Engine-devel] about ca-file.eml
>
> Subject:
> [Engine-devel] about ca-file
> From:
> "wanglibo" <wanglibo(a)tongfangcloud.com>
> Date:
> Mon, 8 Apr 2013 18:02:37 +0800
>
> To:
> <engine-devel(a)ovirt.org>
>
>
> Hi,all:
>
> I’m in troubling with ca-file, who can tell me which the direction assigned to CA_FILE
>
> On the webpage http://www.ovirt.org/How_to_Connect_to_SPICE_Console_Without_Portal
>
> saided from the web: |wget -O ${CA_FILE}| |*http://${OVIRT}/ca.crt* <http://%24%7Bovirt%7D/ca.crt>|
>
> When I use overt-shell, I get ca.pem like this :
>
>
>
> [leaboy@Leaboy ovirt_ca]$ pwd
>
> /home/leaboy/ovirt_ca
>
> [leaboy@Leaboy ovirt_ca]$ wget -o ca-cert.pem http://192.168.1.181/ca.pem
>
> [leaboy@Leaboy ovirt_ca]$ ls
>
> ca-cert.pem
>
> [leaboy@Leaboy ovirt_ca]$
>
>
>
> And then, I launched overt-shell and connect to overt-engine like this:
>
>
>
> ++++++++++++++++++++++++++++++++++++++++++
>
>
>
> Welcome to oVirt shell
>
>
>
> ++++++++++++++++++++++++++++++++++++++++++
>
>
>
>
>
> [oVirt shell (disconnected)]# *connect --url https://192.168.1.181 --user admin@internal --password 111111 --ca-file /home/leaboy/ovirt_ca/ca_cear.pem*
>
>
>
>
>
> error: [ERROR]::oVirt API connection failure, [Errno 185090050] _ssl.c:340: error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib
>
>
>
>
>
> [oVirt shell (disconnected)]#
>
>
>
>
>
> _______________________________________________
> Engine-devel mailing list
> Engine-devel(a)ovirt.org
> http://lists.ovirt.org/mailman/listinfo/engine-devel
--
Michael Pasternak
RedHat, ENG-Virtualization R&D
11 years, 7 months
[Engine-devel] Packaging and locales
by Alon Bar-Lev
Hello,
>From recent thread I learned that we package locales within our main package, message bundles are going into jars, and by default we do not build them all.
As this is GWT specific as far as I see in build, I have no real visibility of what happening.
However, I do expect locales to be packaged and installed as separate packages, side by side with main package.
Something like:
# yum install ovirt-engine - provides en_US
# yum install ovirt-engine-locale-zh_CN - will add zh_CN support.
This ease maintenance, as these translations can be maintain using their own release cycle and even out of main tree.
Any thoughts?
Alon
11 years, 7 months
[Engine-devel] Why deploy failed? Please help me, thanks.
by 李强
HI:All
OS:F18
Ovirt engine version:
the first is 3.2.0
update to 3.2.1
and now I compile the source to other language.
MEM:8G
CPU:I7
DISK:60G
I will use chinese language for ovirt engine,
but rpm have not chinese language for default install.
So I git clone source, that I compile the source success.
>From link:
http://www.ovirt.org/Building_oVirt_engine
COMPILE COMMAND
mvn clean install -Pdep,gwt-admin,gwt-user,all-langs
and show message:
------------------------
------------------------
I deploy:
DEPLOY COMMAND:
cd ear && mvn clean install -Pdep
QUESTION:
1,
I open the first page that it show
------------------
Welcome to Open Virtualization Manager.
Version 3.2.1-
------------------
Source shoule be 3.3.0?
If souce version 3.3.0,then I deploy is not invalid.
2,
Change language is failed and is still englist.
Other language is invalid.
COMMAND DEPLOY:
++++++++++++++++++++++
[liqiang@engine ear]$ mvn clean install -Pdep
[INFO] Scanning for projects...
[WARNING]
[WARNING] Some problems were encountered while building the effective model
for org.ovirt.engine:engine-server-ear:ear:3.3.0-SNAPSHOT
[WARNING] 'distributionManagement.repository.id' must not be 'local', this
identifier is reserved for the local repository, using it for other
repositories will corrupt your repository metadata. @ line 18, column 11
[WARNING]
[WARNING] It is highly recommended to fix these problems because they
threaten the stability of your build.
[WARNING]
[WARNING] For this reason, future Maven versions might no longer support
building such malformed projects.
[WARNING]
[INFO]
[INFO]
------------------------------------------------------------------------
[INFO] Building oVirt Server EAR 3.3.0-SNAPSHOT
[INFO]
------------------------------------------------------------------------
[INFO]
[INFO] --- maven-clean-plugin:2.4.1:clean (default-clean) @
engine-server-ear ---
[INFO] Deleting /home/liqiang/ovirt-engine/ear/target
[INFO]
[INFO] --- maven-antrun-plugin:1.7:run (undeploy-ear) @ engine-server-ear
---
[WARNING] Parameter tasks is deprecated, use target instead
[INFO] Executing tasks
main:
[echo] *** Deleting
/usr/share/jboss-as/standalone/deployments/engine.ear/...
[delete] Deleting directory
/usr/share/jboss-as/standalone/deployments/engine.ear
[INFO] Executed tasks
[INFO]
[INFO] --- maven-ear-plugin:2.8:generate-application-xml
(default-generate-application-xml) @ engine-server-ear ---
[INFO] Generating application.xml
[INFO]
[INFO] --- maven-resources-plugin:2.4.3:resources (default-resources) @
engine-server-ear ---
[INFO] Using 'UTF-8' encoding to copy filtered resources.
[INFO] skip non existing resourceDirectory
/home/liqiang/ovirt-engine/ear/src/main/java
[INFO] Copying 1 resource
[INFO]
[INFO] --- maven-ear-plugin:2.8:ear (default-ear) @ engine-server-ear ---
[INFO] Copying artifact [war:org.ovirt.engine.core:root-war:3.3.0-SNAPSHOT]
to [root.war] (unpacked)
[INFO] Copying artifact
[war:org.ovirt.engine.api:restapi-webapp:3.3.0-SNAPSHOT] to [restapi.war]
(unpacked)
[INFO] Copying artifact [war:org.ovirt.engine.ui:userportal:3.3.0-SNAPSHOT]
to [userportal.war] (unpacked)
[INFO] Copying artifact [war:org.ovirt.engine.ui:webadmin:3.3.0-SNAPSHOT]
to [webadmin.war] (unpacked)
[INFO] Copying artifact
[ejb:org.ovirt.engine.core:scheduler:3.3.0-SNAPSHOT] to [scheduler.jar]
[INFO] Copying artifact [ejb:org.ovirt.engine.core:bll:3.3.0-SNAPSHOT] to
[bll.jar]
[INFO] Copying artifact
[jar:org.ovirt.engine.core:vdsbroker:3.3.0-SNAPSHOT] to [lib/vdsbroker.jar]
[INFO] Copying artifact [jar:org.ovirt.engine.core:compat:3.3.0-SNAPSHOT]
to [lib/compat.jar]
[INFO] Copying artifact [jar:org.ovirt.engine.core:common:3.3.0-SNAPSHOT]
to [lib/common.jar]
[INFO] Copying artifact [jar:org.hibernate:hibernate-validator:4.0.2.GA] to
[lib/hibernate-validator.jar]
[INFO] Copying artifact [jar:javax.validation:validation-api:1.0.0.GA] to
[lib/validation-api.jar]
[INFO] Copying artifact [jar:javax.xml.bind:jaxb-api:2.1] to
[lib/jaxb-api.jar]
[INFO] Copying artifact [jar:javax.xml.stream:stax-api:1.0-2] to
[lib/stax-api.jar]
[INFO] Copying artifact [jar:com.sun.xml.bind:jaxb-impl:2.1.3] to
[lib/jaxb-impl.jar]
[INFO] Copying artifact [jar:org.ovirt.engine.core:utils:3.3.0-SNAPSHOT] to
[lib/utils.jar]
[INFO] Copying artifact [jar:commons-beanutils:commons-beanutils:1.8.2] to
[lib/commons-beanutils.jar]
[INFO] Copying artifact [jar:org.apache.mina:mina-core:2.0.1] to
[lib/mina-core.jar]
[INFO] Copying artifact [jar:org.apache.sshd:sshd-core:0.7.0] to
[lib/sshd-core.jar]
[INFO] Copying artifact [jar:org.ovirt.otopi:otopi:1.0.0] to [lib/otopi.jar]
[INFO] Copying artifact
[jar:org.ovirt.ovirt-host-deploy:ovirt-host-deploy:1.0.0] to
[lib/ovirt-host-deploy.jar]
[INFO] Copying artifact [jar:org.apache.commons:commons-compress:1.4.1] to
[lib/commons-compress.jar]
[INFO] Copying artifact [jar:org.tukaani:xz:1.0] to [lib/xz.jar]
[INFO] Copying artifact [jar:commons-lang:commons-lang:2.6] to
[lib/commons-lang.jar]
[INFO] Copying artifact [jar:commons-codec:commons-codec:1.4] to
[lib/commons-codec.jar]
[INFO] Copying artifact [jar:org.apache.xmlrpc:xmlrpc-client:3.1.3] to
[lib/xmlrpc-client.jar]
[INFO] Copying artifact [jar:org.apache.xmlrpc:xmlrpc-common:3.1.3] to
[lib/xmlrpc-common.jar]
[INFO] Copying artifact
[jar:org.apache.ws.commons.util:ws-commons-util:1.0.2] to
[lib/ws-commons-util.jar]
[INFO] Copying artifact [jar:xml-apis:xml-apis:1.0.b2] to [lib/xml-apis.jar]
[INFO] Copying artifact [jar:org.ovirt.engine.core:dal:3.3.0-SNAPSHOT] to
[lib/dal.jar]
[INFO] Copying artifact [jar:org.springframework:spring-jdbc:3.1.1.RELEASE]
to [lib/spring-jdbc.jar]
[INFO] Copying artifact [jar:org.springframework:spring-tx:3.1.1.RELEASE]
to [lib/spring-tx.jar]
[INFO] Copying artifact
[jar:org.springframework.ldap:spring-ldap-core:1.3.1.RELEASE] to
[lib/spring-ldap-core.jar]
[INFO] Copying artifact [jar:commons-httpclient:commons-httpclient:3.1] to
[lib/commons-httpclient.jar]
[INFO] Copying artifact [jar:commons-collections:commons-collections:3.1]
to [lib/commons-collections.jar]
[INFO] Copying artifact [jar:org.quartz-scheduler:quartz:2.1.2] to
[lib/quartz.jar]
[INFO] Copying artifact [jar:c3p0:c3p0:0.9.1.1] to [lib/c3p0.jar]
[INFO] Copying artifact [jar:org.slf4j:slf4j-api:1.6.1] to
[lib/slf4j-api.jar]
[INFO] Copying artifact
[jar:org.ovirt.engine.core:searchbackend:3.3.0-SNAPSHOT] to
[lib/searchbackend.jar]
[INFO] Copying artifact
[jar:org.jboss.spec.javax.interceptor:jboss-interceptors-api_1.1_spec:1.0.0.Final]
to [lib/jboss-interceptors-api_1.1_spec.jar]
[INFO] Copying artifact [jar:org.springframework:spring-core:3.1.1.RELEASE]
to [lib/spring-core.jar]
[INFO] Copying artifact [jar:org.springframework:spring-asm:3.1.1.RELEASE]
to [lib/spring-asm.jar]
[INFO] Copying artifact
[jar:org.springframework:spring-beans:3.1.1.RELEASE] to
[lib/spring-beans.jar]
[INFO] Copying artifact
[jar:org.springframework:spring-context:3.1.1.RELEASE] to
[lib/spring-context.jar]
[INFO] Copying artifact [jar:org.springframework:spring-aop:3.1.1.RELEASE]
to [lib/spring-aop.jar]
[INFO] Copying artifact [jar:aopalliance:aopalliance:1.0] to
[lib/aopalliance.jar]
[INFO] Copying artifact
[jar:org.springframework:spring-expression:3.1.1.RELEASE] to
[lib/spring-expression.jar]
[INFO] Copy ear sources to /home/liqiang/ovirt-engine/ear/target/engine
[INFO] Could not find manifest file:
/home/liqiang/ovirt-engine/ear/target/engine/META-INF/MANIFEST.MF -
Generating one
[INFO] Building jar: /home/liqiang/ovirt-engine/ear/target/engine.ear
[INFO]
[INFO] --- maven-dependency-plugin:2.1:unpack (deploy-modules) @
engine-server-ear ---
[INFO] Configured Artifact:
org.ovirt.engine.core:dependencies:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:common:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:compat:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:dal:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:searchbackend:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:tools:modules:3.3.0-SNAPSHOT:zip
[INFO] Configured Artifact:
org.ovirt.engine.core:utils:modules:3.3.0-SNAPSHOT:zip
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/dependencies/3.3.0-SNAPSHOT/dependencies-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[WARNING] Unable to expand to file
/usr/share/jboss-as/modules/org/apache/commons/configuration/main/module.xml
[WARNING] Unable to expand to file
/usr/share/java/apache-commons-configuration.jar
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/common/3.3.0-SNAPSHOT/common-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/compat/3.3.0-SNAPSHOT/compat-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/dal/3.3.0-SNAPSHOT/dal-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/searchbackend/3.3.0-SNAPSHOT/searchbackend-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/tools/3.3.0-SNAPSHOT/tools-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO] Unpacking
/home/liqiang/.m2/repository/org/ovirt/engine/core/utils/3.3.0-SNAPSHOT/utils-3.3.0-SNAPSHOT-modules.zip
to
/usr/share/jboss-as/modules
with includes null and excludes:null
[INFO]
[INFO] --- maven-antrun-plugin:1.7:run (deploy-ear) @ engine-server-ear ---
[WARNING] Parameter tasks is deprecated, use target instead
[INFO] Executing tasks
main:
[echo] *** Copying updated files to
/usr/share/jboss-as/standalone/deployments/engine.ear/...
[unjar] Expanding: /home/liqiang/ovirt-engine/ear/target/engine.ear
into /usr/share/jboss-as/standalone/deployments/engine.ear
[echo] *** Touching
/usr/share/jboss-as/standalone/deployments/engine.ear/META-INF/application.xml
to force redeployment of engine.ear...
[echo] *** Touching engine.ear.dodeploy to force deployment of
engine.ear...
[INFO] Executed tasks
[INFO]
[INFO] --- maven-install-plugin:2.3.1:install (default-install) @
engine-server-ear ---
[INFO] Installing /home/liqiang/ovirt-engine/ear/target/engine.ear to
/home/liqiang/.m2/repository/org/ovirt/engine/engine-server-ear/3.3.0-SNAPSHOT/engine-server-ear-3.3.0-SNAPSHOT.ear
[INFO] Installing /home/liqiang/ovirt-engine/ear/pom.xml to
/home/liqiang/.m2/repository/org/ovirt/engine/engine-server-ear/3.3.0-SNAPSHOT/engine-server-ear-3.3.0-SNAPSHOT.pom
[INFO]
------------------------------------------------------------------------
[INFO] BUILD SUCCESS
[INFO]
------------------------------------------------------------------------
[INFO] Total time: 54.354s
[INFO] Finished at: Fri Apr 19 10:48:39 EDT 2013
[INFO] Final Memory: 14M/191M
[INFO]
------------------------------------------------------------------------
++++++++++++++++++++++
engine-upgrade
COMMAND MESSAGE:
------------------------------------
[root@engine ~]# engine-upgrade
Checking for updates... (This may take several minutes)...[ DONE ]
8 Updates available:
* ovirt-engine-3.2.1-1.fc18.noarch
* ovirt-engine-tools-3.2.1-1.fc18.noarch
* ovirt-engine-backend-3.2.1-1.fc18.noarch
* ovirt-engine-dbscripts-3.2.1-1.fc18.noarch
* ovirt-engine-genericapi-3.2.1-1.fc18.noarch
* ovirt-engine-restapi-3.2.1-1.fc18.noarch
* ovirt-engine-userportal-3.2.1-1.fc18.noarch
* ovirt-engine-webadmin-portal-3.2.1-1.fc18.noarch
During the upgrade process, oVirt Engine will not be accessible.
All existing running virtual machines will continue but you will not be
able to
start or stop any new virtual machines during the process.
Would you like to proceed? (yes|no): yes
Stopping ovirt-engine service... [ DONE ]
Stopping DB related services... [ DONE ]
Pre-upgrade validations... [ DONE ]
Backing Up Database... [ DONE ]
Rename Database... [ DONE ]
Updating rpms... [ DONE ]
Updating Database... [ DONE ]
Restore Database name... [ DONE ]
Preparing CA... [ DONE ]
Running post install configuration... [ DONE ]
Starting ovirt-engine service... [ DONE ]
oVirt Engine upgrade completed successfully!
* Upgrade log available at
/var/log/ovirt-engine/ovirt-engine-upgrade_2013_04_19_10_39_54.log
* DB Backup available at
/var/lib/ovirt-engine/backups/ovirt-engine_db_backup_2013_04_19_10_39_54.sql
------------------------------------
11 years, 7 months
Re: [Engine-devel] [oss-security] CVE-2012-XXYY Request -- google-authenticator: Information disclosure due insecure requirement on the secrets file
by Michael Pasternak
FYI
On 04/18/2013 01:45 PM, Jan Lieskovsky wrote:
> Hello Kurt, Steve, Alexander, vendors,
>
> as noted in [1]:
>
> An information disclosure file was found in the way google-authenticator,
> a pluggable authentication module (PAM) which allows login using one-time
> passcodes conforming to the open standards developed by the Initiative for
> Open Authentication (OATH), performed management of its secret / state file
> in certain configurations. Due the lack of 'user=' option the secret file
> was previously required to be user-readable, allowing (in certain cases)
> a local attacker to obtain the (pre)shared client-to-authentication-server
> secret, possibly leading to victim's account impersonation.
>
> A different vulnerability than CVE-2013-0258.
>
> References:
> [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666129
> [2] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666129#10
> [3] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666129#20
> [4] https://bugzilla.redhat.com/show_bug.cgi?id=953505
>
> Relevant upstream patch:
> [5] https://code.google.com/p/google-authenticator/source/detail?r=c3414e9857...
>
> @Alexander - since I am not sure I have described the attack vector above
> properly, please correct me if / where required.
>
> @Kurt * the CVE-2012- identifier should be allocated to this issue, since
> the security implications of this problem are for the first time
> mentioned here: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=666129#10 (2012-09-22),
>
> * from what I have looked, there doesn't seem to be:
> http://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=authenticator
>
> a CVE identifier allocated to this issue yet (as noted above
> CVE-2013-0258 from that list is different issue).
>
> => could you allocate one?
>
> Thank you && Regards, Jan.
> --
> Jan iankko Lieskovsky / Red Hat Security Response Team
--
Michael Pasternak
RedHat, ENG-Virtualization R&D
11 years, 7 months
